Custom MCP Environment Variable Bypass in Flowise by FlowiseAI
CVE-2026-58057

2.3LOW

Key Information:

Vendor

Flowise

Status
Vendor
CVE Published:
28 June 2026

What is CVE-2026-58057?

Flowise versions prior to 3.1.3 suffer from a vulnerability due to improper validation of Custom MCP standard input/output environment variables against a denylist. The case-sensitive nature of the comparison allows an authenticated user to exploit this flaw on Windows systems where environment variables are case-insensitive. By supplying 'node_options', an attacker can bypass the NODE_OPTIONS entry in the denylist. This enables the execution of arbitrary code within the Flowise server context, posing a significant security risk.

Affected Version(s)

Flowise 0 < 3.1.3

Flowise 3.1.3

References

CVSS V4

Score:
2.3
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

ashdfrkl
.